Jump to content

Recommended Posts

Hi,     :welcome:

My name is Maurice. I will be helping and guiding you, going forward on this case.

Let me know what first name you prefer to go by.

 

Please follow my directions as we go along.  Please do not do any changes on your own without first checking with me.

If you will be away for more than 3 consecutive days,  do try to let me know ahead of time, as much as possible.

 

Please only just attach   all report files, etc  that I ask for as we go along.

 

There are a few P U P items, potentially unwanted types.  Please notice the notation in Malwarebytes report "No Action By User".

One has to insure to look at all items tagged AND  to be real sure all items are check-marked for removal.

 

I would like you to do a new scan with Malwarebytes for Windows.  One of the major goals here is to have it remove all that it detects.  If it finds anything that is.

Start Malwarebytes from the Windows  Start menu.

Click Settings ( gear icon)   at the top right of Malwarebytes window.   We want to see the SETTINGS window.

Then click the Security tab.   Look for the section "Automatic Quarantine".   Be sure it is clicked On   ( to the far right side)

 

Then scroll down to the section Potentially Unwanted items.   We need the next 2 lines   ( for P U P  & for P U  M)  to be set to "Always ( Recommended) ".

You can make the change by clicking on the down-arrow selection list-control.   We want all P U P  &  P U M to be marked for removal.

 

Next, click the small x on the Settings line   to go to the main Malwarebytes Window.

Next click the blue button marked Scan.

When the scan phase is done, be real sure you Review and have all detected lines items check-marked on each line on the left. That too is very critical.

Then click on Quarantine selected.

Then, locate the Scan run report;  export out a copy;  & then attach in with your  reply.

See https://support.malwarebytes.com/hc/en-us/articles/360038479194-View-Reports-and-History-in-Malwarebytes-for-Windows-v4

 

 

Share this post


Link to post
Share on other sites

Thank you for the scan report.  That is better.    Malwarebytes for Windows found & removed 1 PUP.Optional.BazzSearch

I also notice this was related to Chrome's way of retaining history, etc.

Let's follow up with these steps.

[   1   ]

Use Chrome browser to go to https://www.google.com/settings/chrome/sync and sign into your account.
Scroll down until you see the "reset sync" button and click on the button
At the prompt click on "Ok".

 

for Chrome, while Chrome is running:
Press & hold SHIFT+CTRL+Del keys  on keyboard to get menu for clearing browsing data:

Check mark the line  "Browsing history"

Check mark the line "Download history"

Check mark the lined "Cached images and files"
and press Clear Data button  ( in blue )

 

After that, make real sure that Chrome is "NOT" set to reload the pages from the last session

Go into the settings menu of Chrome by first clicking  the control icon of Chrome on upper right of the adress bar

Then look deeper in SETTINGS

image.png.259afaf6e2011e98dffdc28004b520aa.png

 

Make real sure it is "NOT" set to "continue where you left off"

.

[   2   ]

I  would suggest to download, Save, and then run Malwarebytes ADWCLEANER.

Please close Chrome and all other open web browsers after you have saved the Adwcleaner and before you start Adwcleaner scan.

Adwcleaner  detects factory Preinstalled applications too!

 

Please download  Malwarebytes AdwCleaner  https://downloads.malwarebytes.com/file/adwcleaner
 

Be sure to Save the file first, to your system.  Saving to the Downloads folder should be the default on your system.

 

Go to the folder where you saved Adwcleaner. Double click Adwcleaner  to start it.

At the prompt for license agreement, review and then click on I agree.

 

You will then see a main screen for Adwcleaner. ( if you do not see it right away, minimized the other open windows, so you can see Adwcleaner).

Then click on Dashboard button.

Click the blue button "Scan Now".

 

allow it a few minutes to finish the Scan.   Let it remove what it finds.

NOTE:  When it comes to the section "

Pre-installed applications

 

You can skip that.

Please find and send the Adwcleaner "C" clean report.

In Adwcleaner, click the "Reports" button.  Look at the list of reports for the latest date & type "Clean".

Double Click that line & it will open in Notepad.   Save the file to your system and then Attach that with your reply.

 

That C clean report will be the one with the most recent Date and time at folder  C:\AdwCleaner\Logs

Thanks.  Keep me advised.

 

Share this post


Link to post
Share on other sites

Thank you for the Adwcleaner report.

Lets do the following procedures.

[   1   ]

The Microsoft Safety Scanner  is a free Microsoft stand-alone virus scanner that  can be used to scan for & remove malware or potentially unwanted software from a system.

The download links & the how-to-run-the tool are at this link at Microsoft

https://docs.microsoft.com/en-us/windows/security/threat-protection/intelligence/safety-scanner-download

 

Let me know the result of this.

The log is named MSERT.log 

the log will be at  %SYSTEMROOT%\debug\msert.log   which in most cases is

C:\Windows\debug\msert.log

Please attach that log with your reply.

[     2    ]

I would like you to do a new scan with Malwarebytes for Windows.  One of the major goals here is to have it remove all that it detects.  If it finds anything that is.

Start Malwarebytes from the Windows  Start menu.

Click Settings ( gear icon)   at the top right of Malwarebytes window.   We want to see the SETTINGS window.

Then click the Security tab.   Look for the section "Automatic Quarantine".   Be sure it is clicked On   ( to the far right side)

 

Then scroll down to the section Potentially Unwanted items.   We need the next 2 lines   ( for P U P  & for P U  M)  to be set to "Always ( Recommended) ".

You can make the change by clicking on the down-arrow selection list-control.   We want all P U P  &  P U M to be marked for removal.

 

Next, click the small x on the Settings line   to go to the main Malwarebytes Window.

Next click the blue button marked Scan.

When the scan phase is done, be real sure you Review and have all detected lines items check-marked on each line on the left. That too is very critical.

Then click on Quarantine selected.

Then, locate the Scan run report;  export out a copy;  & then attach in with your  reply.

See https://support.malwarebytes.com/hc/en-us/articles/360038479194-View-Reports-and-History-in-Malwarebytes-for-Windows-v4

 

[     3    ]

  • Download SecurityCheck by glax24 from here and save the tool on the desktop.
  • Right-click  with your mouse on the Securitycheck.exe  and select "Run as administrator"   and reply YES to allow to run & go forward
  • Wait for the scan to finish. It will open in a text file named SecurityType.txt. Close the file.  Attach it with your next reply.
  • You can find this file in a folder called SecurityCheck, C:\SecurityCheck\SecurityCheck.txt

 

[    4   ]

Be sure to let me know, at that point, How is the overall situation ?

Share this post


Link to post
Share on other sites

From the Malwarebytes report:

PUP.Optional.BazzSearch, C:\USERS\QWERTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, No Action By User,     ( underline added by me )

 

The MS Security Scanner found 1 item & removed it.

Found Trojan:JS/ProxyChanger.AR!MTB and Removed!

 

I would appreciate  getting some key details from this machine in order to help you forward.
 NOTE: The tools and the information obtained is safe and not harmful to your privacy or your computer, please allow the programs to run if blocked by your system.

 

Do have patience while the report tool runs.  It may take several minutes.  Just let it run & take its time.  You may want to close your other open windows so that there is a clear field of view.

Download Malwarebytes Support Tool
    
    
    Once the file is downloaded, open your Downloads folder/location of the downloaded file
    Double-click mb-support-1.5.4.760.exe  to run the report
        You may be prompted by User Account Control (UAC) to allow changes to be made to your computer. Click Yes to consent.
        
    Place a checkmark next to Accept License Agreement and click Next
    You will be presented with a page stating, "Get Started!"

    Do NOT use the button “Start repair” !
    Click the Advanced tab on the left column
    
    Click the Gather Logs button
    
    A progress bar will appear and the program will proceed with getting logs from your computer
   
    Upon completion, click a file named mbst-grab-results.zip will be saved to your Desktop. Click OK
    Please attach the ZIP file in your next reply.

I will have more, later.

Sincerely,

Maurice

Share this post


Link to post
Share on other sites

Thank you for the support-tool-report.   Let us do what follows so that the Windows 10 '  Windows Defender is re-enabled.

Start Malwarebytes. Click Settings ( gear ) icon. Next, lets make real sure that Malwarebytes does NOT register with Windows Security Center 

Click the Security Tab. Scroll down to 

"Windows Security Center"

Click the selection to the left  for the line "Always register Malwarebytes in the Windows Security Center".


Then close the window.   At that point, the Microsoft Windows Defender Antivirus would be enabled,  as the resident antivirus.

.

I notice in the reports that the Chrome user / appdata "Web"  sub-folder still is being flagged as still having history traces of "bazzsearch".

The following procedure is customized to help on that.

Please Close and Save any open work you may have open.

Please close as many un-needed app-windows that you yourself may have open at this point.   So you can have a clear field of view.

 

This custom script is for  Nabeel_Hussain    only / for this machine only.

Close and save any open work files before starting this procedure. 

 

Please Close and save any open work files before you start this next step.  It will involve a Windows Restart at the end of it.

I am sending a   custom Fix script which is going to be used by the FRSTENGLISH tool. They will both work together as a pair.

Please RIGHT-click the (attached file named) FIXLIST and select SAVE  link AS and save it directly ( as is) to the  Downloads  folder

The tool named FRSTENGLISH.exe   tool    is already on the Downloads folder

Start the Windows Explorer and then, to the Downloads folder.


RIGHT click on  FRSTENGLISH    and select RUN as Administrator and allow it to proceed.  Reply YES when prompted to allow to run.

  to run the tool. If the tool warns you the version is outdated, please download and run the updated version.

IF Windows prompts you about running this, select YES to allow it to proceed.

 

IF you get a block message from Windows about this tool......

click line More info information on that screen

and click button Run anyway on next screen.

 

on the FRST window:
Click the Fix button just once, and wait.

image.png.ec88dcad59d6d9fda1a830cb1b4ae3e5.png

PLEASE have lots and lots of patience when this starts. You will see a green progress bar start. Lots of patience. This run here should be fairly quick.
If you receive a message that a reboot is required, please make sure you allow it to restart normally.
The tool will complete its run after restart.
When finished, the tool will make a log ( Fixlog.txt) in the same location from where it was run.

Please attach the FIXLOG.txt with your next reply later, at your next opportunity   

Let me know how the situation is after all this.

Thank you.

Fixlist.txt

Share this post


Link to post
Share on other sites

I've attached the Fixlog.txt with this reply. Also, after running the custom script I ran a simple Windoes Defender Antivirus quick scan and it still gave the same result as it has been giving since before the above actions. I have attached a screenshot of the result of the scan named defender_scan.jpg. Please take a look at that and advise me on what to do next

defender_scan.jpg

Fixlog.txt

Share this post


Link to post
Share on other sites
Posted (edited)

On what the Windows Defender has flagged,  you can see the name of the ISO file that is on the Downloads folder.

I suggest you go into the Downloads folder.   Find the file.   Delete it.   It looks to me like some sort of a trrent file that was downloaded.   Delete it.

The name starts with fifa 20 codex-torrent

.

Thanks for the Fixlog report.   I need for you to do the following, as follow up, for Chrome history cleanup.

[   1   ]

What follows is a first step to have Windows 10 show all files and folder. Do not let this spook you out.

There is a how-to at Tenforums. Use either option one or two or three

https://www.tenforums.com/tutorials/7078-turn-off-show-all-folders-windows-10-navigation-pane.html

 

[    2   ]

Next, get to an elevated Command prompt window.

On the Windows Search box, type in

cmd.exe

and look for the list of displayed matches.   there will be a list for Command prompt on the right-side result pane.

Click on "Run as administrator" line.   You will see a black Command prompt window.

COPY the following whole line as-is   and then Paste onto the command prompt screen.   You can do a right-click with mouse and choose Paste

 

del /s /q C:\USERS\QWERTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data\*.*

and tap Enter-key to run the command.   Watch for the result.

 

Edited by Maurice Naggar

Share this post


Link to post
Share on other sites

P.S.   Back to the screen-displayed by the Windows Defender, if you go back and drill down to it, you will see that ACTIONS button  at the very bottom, with a drop-down capability.

Click Actions,   You should see a line-option to Remove the file.   Do that.

Share this post


Link to post
Share on other sites

I ran the command you gave in cmd and the result was "The system cannot find the path specified."

Also, in the downloads folder I couldn't find the file which was flagged by windows defender and also when I click on the ACTIONS button at the bottom , the only option available is "Allow". I have attached a picture of the same with this reply. Does the "Remediation incomplete" message signify that the virus has been quarantined and is of no danger to the system ?

severe.jpg

Share this post


Link to post
Share on other sites
Posted (edited)

[   1   ]

Quote

I ran the command you gave in cmd and the result was "The system cannot find the path specified."

It may just be that the settings in Windows File Explorer is not fully set to show ALL  folders, all system files,  etc  including hidden files / folders

Open Windows File Explorer.

  • Select View   from its top menu bar  >   click Options  on the icon at the far right-side > Change folder and search options   ( from the drop down ).
  • on the next multi-tab mini-window
  • Select the View tab and, in Advanced settings,
  • select Show hidden files, folders, and drives 
  • and OK.

[     2    ]

About the Windows Defender actions,  lets not change anything there.   Lets get a fresh current report from FRST & let us see about any entries in Windows logs by the Windows Defender.

The report tool FRSTENGLISH is already on the Downloads folder.

 

Run report with FRSTENGLISH

Right-click on FRSTENGLISH icon and select Run as Administrator to start the tool , and reply YES to allow it to proceed and run.

_Windows  10 users will be prompted about Windows *SmartScreen protection* - click line More info information on that screen and click button Run anyway on next screen._

Click YES when prompted by Windows U A C prompt to allow it to run.
Note: If you are prompted by Windows SmartScreen, click More info & followup & choose Run anyway.


Approve the Windows UAC prompt on Windows Vista and newer operating systems by clicking on Continue or Yes. 

Click Yes when the* disclaimer* appears in FRST.
The tool may want to update itself - in that case you'll be prompted when the update is completed and ready to use.

Make sure that Addition options is *checked* - the configuration should look exactly like on the screen below (do not mark additional things unless asked).
Press Scan button and wait.


image.png.1ca672d5c211ac4d1beda37904415449.png



The tool will produce 2  logfiles on your desktop: FRST.txt , Addition.txt 
Click OK button when it shows up. Close the Notepad windows when they show on screen. The tool saves the files.

Please attach these 2 files to your next reply.   abd then Keep ging down this list & Do the following.

[   3    ]

Let's use a different ( free)  antivirus scan tool to check this system.

 

I would suggest a free scan with the ESET Online Scanner
Go to https://www.eset.com/us/home/online-scanner/

Look on the right side of the page.  Click Scan Now
It will start a download of "esetonlinescanner_enu.exe"
Save the file to your system, such as the Downloads folder, or else to the Desktop.

Go to the saved file, and double click it to get it started.
When presented with the initial ESET options, click on "Computer Scan".

Next, when prompted by Windows, allow it to start by clicking Yes

When prompted for scan type, Click on Full scan
Look at & tick  ( select )   the radio selection "Enable ESET to detect and quarantine potentially unwanted applications"   and click on Start scan button.

Have patience.  The entire process may take an hour or more. There is an initial update download.
There is a progress window display.
You should ignore all prompts to get the ESET antivirus software program.   ( e.g.  their standard program).   You do not need to buy or get or install anything else.

When the scan is completed, if something was found, it will show a screen with the number of detected items.  If so, click the button marked “View detected results”.

Click The blue “Save scan log” to save the log.

If something was removed and you know it is a false finding, you may click on the blue ”Restore cleaned files”  ( in blue, at bottom).

Press Continue when all done.  You should click to off the offer for “periodic scanning”.

 

Edited by Maurice Naggar

Share this post


Link to post
Share on other sites

Thank you.  I notice that the ESET found & removed several "torrent"  P U P    potentially unwanted applications.

 

Please Close and Save any open work you may have open.

Please close as many un-needed app-windows that you yourself may have open at this point.   So you can have a clear field of view.

 

This custom script is for  Nabeel_Hussain    only / for this machine only.

Close and save any open work files before starting this procedure. 

 

Please Close and save any open work files before you start this next step.  It will involve a Windows Restart at the end of it.

I am sending a   custom Fix script which is going to be used by the FRSTENGLISH tool. They will both work together as a pair.

Please RIGHT-click the (attached file named) FIXLIST and select SAVE  link AS and save it directly ( as is) to the  Downloads  folder

The tool named FRSTENGLISH.exe   tool    is already on the Downloads folder

Start the Windows Explorer and then, to the Downloads folder.


RIGHT click on  FRSTENGLISH    and select RUN as Administrator and allow it to proceed.  Reply YES when prompted to allow to run.

  to run the tool. If the tool warns you the version is outdated, please download and run the updated version.

IF Windows prompts you about running this, select YES to allow it to proceed.

 

IF you get a block message from Windows about this tool......

click line More info information on that screen

and click button Run anyway on next screen.

 

on the FRST window:
Click the Fix button just once, and wait.

image.png.d4c90a73e60b0a51f81e7b1a5e7bb33b.png

 

PLEASE have lots and lots of patience when this starts. You will see a green progress bar start. Lots of patience. This run here should be fairly quick.
If you receive a message that a reboot is required, please make sure you allow it to restart normally.
The tool will complete its run after restart.
When finished, the tool will make a log ( Fixlog.txt) in the same location from where it was run.

Please attach the FIXLOG.txt with your next reply later, at your next opportunity   

 

After this run completes,  Let me know how it is with the original issue of this case.

Sincerely.

Fixlist.txt

Share this post


Link to post
Share on other sites

The original issue which was the "Remediation incomplete" message of a severe trojan virus in a windows defender scan is still there when i run a windows defender scan. What does it mean? That is all I am concerned about

Fixlog.txt

Share this post


Link to post
Share on other sites

You must write down the "date" of the windows defender event, along with the details  - -    like the file-name & folder location  & the classification provide by Microsoft.

And if the tag-event date is not today, we pretty much need to leave that to history.

Bottom line, details are important.   Also, you may if you want do your own manual Full scan with Windows Defender.

.

This last custom fix run was not able to find the folder "C:\USERS\QWERTY\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data"

If it is really not there, that would be ok.

If the Chrome continues to have issues, again, I would suggest dropping Chrome  and just switching to the Brave browser.

.

This last custom run also ran the Windows System File checker and the result was good and normal.

It also ran a Quick scan with Windows Defender,  though the bottom line result is not shown.

 

Herewith, this next custom script will attempt to delete the iso file that has been mentioned by Windows Defender before

plus, also attempt to run a full scan with windows defender, as well as a quick scan.

 

Please first delete the prior file named FIXLIST.txt that I had you save from before,  in the  Downloads  folder

Please Close and Save any open work you may have open.

Please close as many un-needed app-windows that you yourself may have open at this point.   So you can have a clear field of view.

 

This custom script is for  Nabeel_Hussain    only / for this machine only.

Close and save any open work files before starting this procedure. 

 

Please Close and save any open work files before you start this next step.  It will involve a Windows Restart at the end of it.

I am sending a   custom Fix script which is going to be used by the FRSTENGLISH tool. They will both work together as a pair.

Please RIGHT-click the (attached file named) FIXLIST and select SAVE  link AS and save it directly ( as is) to the  Downloads  folder

The tool named FRSTENGLISH.exe   tool    is already on the Downloads folder

Start the Windows Explorer and then, to the Downloads folder.


RIGHT click on  FRSTENGLISH    and select RUN as Administrator and allow it to proceed.  Reply YES when prompted to allow to run.

  to run the tool. If the tool warns you the version is outdated, please download and run the updated version.

IF Windows prompts you about running this, select YES to allow it to proceed.

 

IF you get a block message from Windows about this tool......

click line More info information on that screen

and click button Run anyway on next screen.

 

on the FRST window:
Click the Fix button just once, and wait.

image.png.d4c90a73e60b0a51f81e7b1a5e7bb33b.png

 

PLEASE have lots and lots of patience when this starts. You will see a green progress bar start. Lots of patience. This run here should be fairly quick.
If you receive a message that a reboot is required, please make sure you allow it to restart normally.
The tool will complete its run after restart.
When finished, the tool will make a log ( Fixlog.txt) in the same location from where it was run.

Please attach the FIXLOG.txt with your next reply later, at your next opportunity   

 

 

Fixlist.txt

Share this post


Link to post
Share on other sites

The file name of the trojan which shows up on the windows defender scan is "fifa 20 codex.torrent-9142898935.exe" and its folder it's present in is "C:\Users\Nabeel\Downloads\fifa 20 codex.torrent-9142898935.iso". The original date in which the scan found this file was 31.03.2020 . I have checked the specified folder multiple times since and the file is not there, maybe it got deleted somehow. But i don't understand why the same message pops up on the quick scan since. It makes me think the file is still in the system but I can't find it

Fixlog.txt

Share this post


Link to post
Share on other sites

Just be real sure that Windows is set to show all files , all hidden folders, all folders.

Windows File Explorer needs to be  set to show ALL  folders, all system files,  etc  including hidden files / folders

Open Windows File Explorer.

  • Select View   from its top menu bar  >   click Options  on the icon at the far right-side > Change folder and search options   ( from the drop down ).
  • on the next multi-tab mini-window
  • Select the View tab and, in Advanced settings,
  • select Show hidden files, folders, and drives 
  • and OK.

.

Thanks for the Fixlog.   The run also could not find the ISO file

So I am just going to advice that you not use nor open or do anything yourself  ( as far as using it) the "fifa...iso"  on the C:\Users\Nabeel\Downloads

 

Unless I am very mistaken, the last time that Windows Defender had seen that ISO file was 31 March.   We are now well into April 9 / 10.

I believe we can wrap this case up.

 

I would just suggest one Scan with Malwarebytes for Windows.

I would like you to do a new scan with Malwarebytes for Windows.  One of the major goals here is to have it remove all that it detects.  If it finds anything that is.

Start Malwarebytes from the Windows  Start menu.

Click Settings ( gear icon)   at the top right of Malwarebytes window.   We want to see the SETTINGS window.

Then click the Security tab.   Look for the section "Automatic Quarantine".   Be sure it is clicked On   ( to the far right side)

 

Then scroll down to the section Potentially Unwanted items.   We need the next 2 lines   ( for P U P  & for P U  M)  to be set to "Always ( Recommended) ".

You can make the change by clicking on the down-arrow selection list-control.   We want all P U P  &  P U M to be marked for removal.

 

Next, click the small x on the Settings line   to go to the main Malwarebytes Window.

Next click the blue button marked Scan.

When the scan phase is done, be real sure you Review and have all detected lines items check-marked on each line on the left. That too is very critical.

Then click on Quarantine selected.

Then, locate the Scan run report;  export out a copy;  & then attach in with your  reply.

See https://support.malwarebytes.com/hc/en-us/articles/360038479194-View-Reports-and-History-in-Malwarebytes-for-Windows-v4

 

 

Share this post


Link to post
Share on other sites

I've checked the option on windows file explorer to view all hidden files and folders but still couldn't find the specified file so i think there's no need to worry anymore.

Attached the latest malwarebytes scan report

M.txt

Share this post


Link to post
Share on other sites

Good afternoon.   Hello.

Thanks for the scan report.  The result from the Malwarebytes for Windows is just fine.  No malware.

This system is good to go.   What follows is cleanup of the tools we used & best practices tips.

.

To remove the FRST tool & its work files, do this.  Go to your Downloads folder.  Do a RIGHT-click on FRSTENGLISH.exe & select RENAME & then change it to UNINSTALL.

Then run that ( double click on it)  to begin the cleanup process.

You should delete the MSERT.exe   download

Delete Securitycheck.exe

Delete mb-support-1.5.4.760.exe   on the Downloads folder

Delete   mbst-grab-results.zip  pn the Desktop.

Adwcleaner you may keep & use as needed / on demand to check for adwares.

Anything else I had you download you may delete.

.

The first best practice of computer safety is to have backups of the system.  Make regular periodic backups to offline removable media.
Backup is your best friend.

It is not enough to just have a security program installed. Each pc user needs to practice daily safe computer and internet use.

Best  practices & malware prevention:
Follow best practices when browsing the Internet, especially on opening links coming from untrusted sources.
First rule of internet safety: slow down & think before you "click".
Never click links without first hovering your mouse over the link and seeing if it is going to an odd address ( one that does not fit or is odd looking or has typos).

Free games & free programs are like "candy". We do not accept them from "strangers".

Never open attachments that come with unexpected ( out of the blue ) email no matter how enticing.
Never open attachments from the email itself. Do not double click in the email. Always Save first and then scan with antivirus program.

Pay close attention when installing 3rd-party programs. It is important that you pay attention to the license agreements and installation screens when installing anything off of the Internet. If an installation screen offers you Custom or Advanced installation options, it is a good idea to select these as they will typically disclose what other 3rd party software will also be installed.
Take great care in every stage of the process and every offer screen, and make sure you know what it is you're agreeing to before you click "Next".

Use a Standard user account rather than an administrator-rights account when "surfing" the web.

See more info on Corrine's SecurityGarden Blog  http://securitygarden.blogspot.com/p/blog-page_7.html
Dont remove your current login. Just use the new Standard-user-level one for everyday use while on the internet.

 
Do a Windows Update.

Make certain that Automatic Updates is enabled.
https://support.microsoft.com/en-us/help/12373/windows-update-faq

 

Keep your system and programs up to date. Several programs release security updates on a regular basis to patch vulnerabilities. Keeping your software patched up prevents attackers from being able to exploit them to drop malware.

For other added tips, read "10 easy ways to prevent malware infection"
.
All the best to you.   Stay safe.

Sincerely,

Maurice

Share this post


Link to post
Share on other sites

Glad we could help.

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request.

This applies only to the originator of this thread. Other members who need assistance please start your own topic in a new thread.

Thanks

 

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.